Sign-up

VARIoT news about IoT security

Siemens SIMATIC S7-200 SMART Devices - Cyber & Coffee

Related entries in the VARIoT vulnerabilities database: VAR-202406-0059

Trust: 3.5

Fetched: July 10, 2024, 9:48 a.m., Published: June 13, 2024, 3:21 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: siemens model: s7-200 smart
vendor: siemens model: simatic s7-200 smart cpu st40
vendor: siemens model: simatic s7-200 smart
vendor: siemens model: simatic s7-200 smart cpu st60
vendor: siemens model: simatic s7-200
vendor: siemens model: simatic
vendor: siemens model: simatic s7-200 smart cpu sr30
vendor: siemens model: simatic s7-200 smart cpu st30
vendor: siemens model: simatic s7-200 smart cpu
vendor: siemens model: simatic s7-200 smart cpu cr40
vendor: siemens model: simatic s7-200 smart cpu sr60
vendor: siemens model: simatic s7-200 smart cpu st20
vendor: siemens model: simatic s7-200 smart cpu cr60
vendor: siemens model: simatic s7-200 smart cpu sr20
vendor: siemens model: simatic s7-200 smart cpu sr40
db: NVD ids: CVE-2024-35292

Latest Cybersecurity Infographics With Facts & Figures (2024) - Cybersecurity For Me

Trust: 3.25

Fetched: July 10, 2024, 9:47 a.m., Published: July 8, 2024, 4:53 a.m.
 Vulnerabilities: code execution, denial of service, buffer overflow
Affected productsExternal IDs
vendor: cisco model: meeting
vendor: cisco model: small business
vendor: google model: home
vendor: apple model: watch

CVE-2024-32896: Critical Privilege Escalation Vulnerability in Android Pixel Devices - Datacipher

Trust: 4.75

Fetched: July 10, 2024, 9:41 a.m., Published: July 9, 2024, 3:11 p.m.
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: google model: android
vendor: google model: pixel
db: NVD ids: CVE-2024-32896

CVE - CVE-2020-3586

Related entries in the VARIoT vulnerabilities database: VAR-202011-1030

Trust: 3.0

Fetched: July 10, 2024, 9:40 a.m., Published: Aug. 24, 2030, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2020-3586

Chinese Hackers Attacking Telcos Using Reconnaissance Tools - Security Aid

Trust: 4.75

Fetched: July 10, 2024, 9:29 a.m., Published: June 20, 2024, 12:21 p.m.
 Vulnerabilities: command injection, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2023-34992

Vulnerability Recap 7/8/24: Intel, Cisco & More Face Risks

Related entries in the VARIoT vulnerabilities database: VAR-202309-2171, VAR-202310-1699, VAR-202109-1909, VAR-201801-0826

Trust: 6.25

Fetched: July 10, 2024, 9:27 a.m., Published: July 8, 2024, 6:21 p.m.
 Vulnerabilities: format string bug, code execution, command execution...
Affected productsExternal IDs
vendor: cisco model: router
vendor: cisco model: nx-os software
vendor: cisco model: nexus
vendor: cisco model: cisco nx-os
vendor: cisco model: nx-os
vendor: cisco model: routers
vendor: rockwell automation model: factorytalk view
vendor: rockwell automation model: factorytalk
vendor: rockwell automation model: factorytalk linx
vendor: rockwell automation model: automation panelview
vendor: rockwell automation model: automation panelview plus
vendor: rockwell model: factorytalk view
vendor: rockwell model: factorytalk
vendor: rockwell model: factorytalk linx
vendor: rockwell model: automation panelview
vendor: rockwell model: automation panelview plus
db: NVD ids: CVE-2023-2071, CVE-2006-5051, CVE-2023-29464, CVE-2024-29510, CVE-2021-40444, CVE-2024-38366, CVE-2024-38368, CVE-2024-20399, CVE-2024-6387, CVE-2024-38367, CVE-2024-2973, CVE-2017-5715

Blast RADIUS attack can bypass authentication for clients • The Register

Trust: 3.75

Fetched: July 10, 2024, 9:27 a.m., Published: -
 Vulnerabilities: server impersonation
Affected productsExternal IDs
db: NVD ids: CVE-2024-3596

How to Detect Device Driver Security Risks

Trust: 4.0

Fetched: July 10, 2024, 9:27 a.m., Published: July 3, 2024, midnight
 Vulnerabilities: memory leak, privilege escalation, system crash
Affected productsExternal IDs

Hackers Attacking Check Point Remote Access VPN Devices

Trust: 3.75

Fetched: July 10, 2024, 9:17 a.m., Published: May 28, 2024, 2:36 a.m.
 Vulnerabilities: weak password
Affected productsExternal IDs
vendor: check point model: check point
vendor: check point model: security gateway
vendor: sonicwall model: ssl vpn
vendor: sonicwall model: remote access
vendor: trend model: security
vendor: cisco model: firepower threat defense
vendor: cisco model: adaptive security appliance
vendor: cisco model: firepower
vendor: cisco model: technical support
vendor: check point software technologies model: check point
vendor: check point software technologies model: security gateway

Microsoft Defender for Endpoint - Mobile Threat Defense - Microsoft Defender for Endpoint | Microsoft Learn

Trust: 3.0

Fetched: July 10, 2024, 9:15 a.m., Published: Jan. 28, 2024, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

WARNING: CRITICAL VULNERABILITY IN JUNIPER NETWORKS SESSION SMART ROUTER, SESSION SMART CONDUCTOR AND WAN ASSURANCE ROUTERS CAN BE EXPLOITED TO EXECUTE CODE. PATCH IMMEDIATELY! | Cert

Trust: 5.0

Fetched: July 9, 2024, 10:13 a.m., Published: June 28, 2024, 2:47 p.m.
 Vulnerabilities: authentication bypass, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2024-2973

Severe Linux Kernel Privilege Escalation Bugs Could Compromise Entire Systems

Trust: 4.75

Fetched: July 9, 2024, 10:12 a.m., Published: Feb. 4, 2024, midnight
 Vulnerabilities: privilege escalation, memory corruption, integer overflow...
Affected productsExternal IDs
db: NVD ids: CVE-2024-1086, CVE-2023-3390

VMware vCenter Server Updates Address Critical RCE and Privilege Escalation Vulnerabilities (CVE-2024-37079, CVE-2024-37080, CVE-2024-37081) - SOCRadar® Cyber Intelligence Inc.

Trust: 4.5

Fetched: July 9, 2024, 10:11 a.m., Published: June 18, 2024, 9:54 a.m.
 Vulnerabilities: privilege escalation, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2024-37079, CVE-2024-37081, CVE-2024-37080

Cisco patches actively exploited zero-day flaw in Nexus switches | CSO Online

Trust: 3.25

Fetched: July 9, 2024, 10:09 a.m., Published: July 2, 2024, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: nexus

CocoaPods Vulnerabilities Expose Apple Devices to Supply Chain Attacks - The Review Hive

Trust: 4.75

Fetched: July 9, 2024, 10:08 a.m., Published: July 8, 2024, 8:09 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: macos
db: NVD ids: CVE-2024-38367, CVE-2024-38368, CVE-2024-38366

Vulnerabilities in PanelView Plus devices could lead to remote code execution | Argon Systems

Related entries in the VARIoT vulnerabilities database: VAR-202309-2171

Trust: 5.5

Fetched: July 9, 2024, 10:01 a.m., Published: July 7, 2024, 4:16 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: rockwell automation model: rslogix
vendor: rockwell automation model: factorytalk view
vendor: rockwell automation model: factorytalk
vendor: rockwell automation model: automation panelview
vendor: rockwell automation model: automation panelview plus
vendor: rockwell model: rslogix
vendor: rockwell model: factorytalk view
vendor: rockwell model: factorytalk
vendor: rockwell model: automation panelview
vendor: rockwell model: automation panelview plus
db: NVD ids: CVE-2023-2071

Smart Devices Can Compromise Home Cybersecurity by Davide Bonaventura, Sergio Esposito, Giampaolo Bella :: SSRN

Trust: 3.0

Fetched: July 9, 2024, 10:01 a.m., Published: July 3, 2024, midnight
 Vulnerabilities: -
Affected productsExternal IDs

CVE - CVE-2016-20017

Related entries in the VARIoT vulnerabilities database: VAR-202210-1176

Trust: 3.25

Fetched: July 9, 2024, 10 a.m., Published: Aug. 24, 2030, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2016-20017

Secure Your IoT Network: A Cybersecurity Guide

Trust: 3.25

Fetched: July 9, 2024, 10 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs

CVE - CVE-2021-28372

Trust: 3.25

Fetched: July 9, 2024, 9:58 a.m., Published: Aug. 24, 2030, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-28372